There is a lot of hype around GDPR and the impeding 25th May 2018 date, where all business are expected to be compliant with the new regulation. GDPR is an update to what is currently, the Data Protection Act 1998. I am sure most small businesses are scratching their heads wondering what it is they are supposed to be doing in order to become compliant with the new legislation.

It turns out as long as you are doing something… that you have made a start or if you have data protection processes and procedures in place and have starting up-grading them by 25th May 2018, you should be ok.

The main purpose for GDPR is to make businesses more responsible and accountable for the loss of data. We like to know that our banks, insurance companies and health organisations are looking after our data, and the new rules mean we are responsible for reporting any data loss.

We have had two years to take this in and put plans in to action, but most of us have heard the term being banded around but are really not sure what do to. We at File Genie have put together two quick lists to help you get organised.

What Information Do You Hold?You should document all the personal data you hold, where it came from and who you share it with. You may need to organise an information audit across the organisation or within particular business areas.Source: www.ico.org.uk